Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name, which allows remote attackers to identify valid users on the server.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html | Exploit Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/5442 |
Configurations
Information
Published : 2000-12-18 21:00
Updated : 2017-10-09 18:29
NVD link : CVE-2000-0938
Mitre link : CVE-2000-0938
JSON object : View
CWE
Products Affected
samba
- samba